You are viewing the documentation for Blueriq 14. Documentation for other versions is available in our documentation directory.

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

Identifier

Component

Issue

Solution

BQ-16097

 

[CVE-2022-22976

We've updated the Spring libraries for Blueriq version 15, 14 and 13. If your project uses BCrypt encryption with 31 rounds (blueriq.security.bcrypt-strength) please follow the instructions on the [this

BQ-16096

 

[CVE-2022-22970

We have updated the spring-boot version to 2.6.8 (spring-framework 5.3.20) for version 15 and 14. For version 13 we have updated the spring-framework version to 5.2.22.

BQ-16092

 

CVE-2022-24823 was reported for netty-transport-http.

Netty has been upgraded to version 4.1.77.Final, which doesn't have the vulnerability.

CSD-4123

JAVA Runtime

Function calls from a flow would not preserve the test path.
Function calls via Rest would not take test paths into account at all.

The test path is preserved in function calls from a flow.
You can now specify test paths in function shortcuts and the function call via Rest will take the specified test path to select the project version.

BQ-15966

 

The Keycloak account console could fail to initialize

The Keycloak configuration has been adjusted to resolve the failure

CSD-3947

 

A test path passed to an external flow would not be propagated to services that would be called before the first page in a flow.

This has been fixed.

CSD-4101

JAVA Runtime

In a BAAS, the test path would not be stored to propagate it to other services.

This has been fixed.

CSD-4053

JAVA Runtime

Sending an invalid valuelist value to a BAARS resulted in a 500 http status code, which should be a 400 status code

When sending an invalid valuelist value to a BAARS it will now send a 400 http status code, with a message that contains the invalid field.
  • No labels

Didn't find the answer you were looking for? Try the advanced search